CVE-2020-26078 is a vulnerability in Cisco Iot Field Network Director
Published on November 18, 2020
A vulnerability in the file system of Cisco IoT Field Network Director (FND) could allow an authenticated, remote attacker to overwrite files on an affected system. The vulnerability is due to insufficient file system protections. An attacker could exploit this vulnerability by crafting API requests and sending them to an affected system. A successful exploit could allow the attacker to overwrite files on an affected system.
Weakness Type
External Control of File Name or Path
The software allows user input to control or influence paths or file names that are used in filesystem operations.
Products Associated with CVE-2020-26078
You can be notified by email with stack.watch whenever vulnerabilities like CVE-2020-26078 are published in Cisco Iot Field Network Director:
Affected Versions
Cisco IoT Field Network Director (IoT-FND) Version n/a is affected by CVE-2020-26078Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.